Описание
The pygrub boot loader emulator in Xen, when nul-delimited output format is requested, allows local pygrub-using guest OS administrators to read or delete arbitrary files on the host via NUL bytes in the bootloader configuration file.
| Релиз | Статус | Примечание |
|---|---|---|
| devel | released | 4.8.0-1ubuntu1 |
| esm-infra-legacy/trusty | DNE | trusty/esm was DNE [trusty was released [4.4.2-0ubuntu0.14.04.9]] |
| esm-infra/xenial | released | 4.6.0-1ubuntu4.3 |
| precise | released | 4.1.6.1-0ubuntu0.12.04.13 |
| precise/esm | DNE | precise was released [4.1.6.1-0ubuntu0.12.04.13] |
| trusty | released | 4.4.2-0ubuntu0.14.04.9 |
| trusty/esm | DNE | trusty was released [4.4.2-0ubuntu0.14.04.9] |
| upstream | needed | |
| vivid/stable-phone-overlay | DNE | |
| vivid/ubuntu-core | DNE |
Показывать по
EPSS
4.6 Medium
CVSS2
7.5 High
CVSS3
Связанные уязвимости
The pygrub boot loader emulator in Xen, when nul-delimited output format is requested, allows local pygrub-using guest OS administrators to read or delete arbitrary files on the host via NUL bytes in the bootloader configuration file.
The pygrub boot loader emulator in Xen, when nul-delimited output format is requested, allows local pygrub-using guest OS administrators to read or delete arbitrary files on the host via NUL bytes in the bootloader configuration file.
The pygrub boot loader emulator in Xen, when nul-delimited output form ...
The pygrub boot loader emulator in Xen, when nul-delimited output format is requested, allows local pygrub-using guest OS administrators to read or delete arbitrary files on the host via NUL bytes in the bootloader configuration file.
EPSS
4.6 Medium
CVSS2
7.5 High
CVSS3